tft export / scp export privilege level question

Hi,

why do tft export and scp export require write access to the device?

They are not available on readonly users.

Thanks

Karsten

Using QOS to control Internet download usage

Hello,

I've read through the documentation and forum posts, and tinkered with QOS config but still am not clear on whether what I'd like to do is possible.  Hopefully I can explain this clearly... here goes...

I've got a PA-4020 HA running 3.1.5.  Inte

Panorama Extra storage

Hello i've just setup panorama server and have followed these insructions to add a  dsik for bigger storage for logs, but in the GUI it still shows 10gb even though I have attached a 500GB virtual hardrive.

these are the instuctions I followed.

1. In V

web-browsing application basic question

Hello.

I have PANOS 4.1

Can somebody explain to me why when i permit folowing applications (clearspace, flash, ftp, google-maps, google-translate, ssl, web-browsing) on application-default serwice  in policy from zone trust to untrust in rule1 the yout

PCAP

Does anyone know of a tool/application I can use to sanitize or remove username/password in a pcap file?

How to completely deny a specific url-category?

When you setup url-filtering you can choose from one of the following actions:

Allow (permit access)

Block (block access and notify user)

Continue (block access and notify user and let user continue anyway if they want to)

Override (same as continue but

Wildfire feedback

Hello all,

As many of you guys, we have downloaded and installed the latest version of PAN OS - 4.1.0

Do you have by any chance first feedbacks about the new wildfire feature ?

Although the configuration is pretty straight & easy, we notice some strange

Global Protect and digital certificate

We would like to deploy a VPN client with both digital certificate (for group authentication) and RSA SecurID password (for strong authentication); so far we have failed in importing into GlobalProtect client digital certificates: is it supported? In

Palo Alto is not Blocking Ultrasurf ver 9.x and 10.x

Hello, everybody we have some problems with this evasive aplication, Ultrasurf. PAN can detect many  version of this software but also NOT detect it some others. The trafic generated by some versions (especially version 9.x and some 10.0x), only dete

inter vsys BGP routing

I’m currently trying to setup BGP between two VR hosted on one firewall without success.

I’ve successfully established a BGP session to external routers and between VRs hosted on the different firewalls.

Each VR is in a separate VSYS and visible to eac

Action in "Threat Summary Log"

I am trying to create some reports based on the "Threat Summary Log"-Database. Unfortunately, I am not able to create a report which shows me just the blocked threats.

If I use the "Threat Log"-Database, the report works fine (but to short time period

Block akamai ?

Are there any users that are blocking akamai? Some sites lose functionality if you block akamai. Any feedback would be great.

Thanks.

Ipv4 configuration required if you wish to talk IPV6?

Guys, looks like you need to have configured the interface using ipv4 if you wish to configure ipv6. I tried to use ipv6 configuration alone, but always the commit fails because of that.

Could you confirm this?

Robert